The Hacker News

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.
Computer Weekly

Iran war a melting pot for other cyber threats

State-backed cyber threat actors from non-combatant states are taking advantage of the Israeli-US war on Iran to fulfil their own goals, according to Proofpoint analysts.
CoinTelegraph

Bonk.fun warns hackers hijacked domain in wallet-drainer attack

Bonk.fun warned users not to use its site after attackers hijacked the domain and pushed a fake wallet-draining prompt. The domain of Solana-based platform memecoin launchpad Bonk.fun has been ...
Invezz

Bonk.fun users at risk after hackers hijack domain to deploy wallet drainer

Hackers compromised the Bonk.fun domain to inject malicious script. Only users who signed the transaction have been impacted.